ELSA-2017-3533
- ULN >
- Oracle Linux Errata repository >
- ELSA-2017-3533
ELSA-2017-3533 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2017-03-31 |
Description
kernel-uek
[4.1.12-61.1.33]
- Revert 'x86/mm: Expand the exception table logic to allow new handling options' (Brian Maly) [Orabug: 25790387] {CVE-2016-9644}
- Revert 'fix minor infoleak in get_user_ex()' (Brian Maly) [Orabug: 25790387] {CVE-2016-9644}
[4.1.12-61.1.32]
- x86/mm: Expand the exception table logic to allow new handling options (Tony Luck) [Orabug: 25790387] {CVE-2016-9644}
[4.1.12-61.1.31]
- rebuild bumping release
[4.1.12-61.1.30]
- net: ping: check minimum size on ICMP header length (Kees Cook) [Orabug: 25766898] {CVE-2016-8399} {CVE-2016-8399}
- sg_write()/bsg_write() is not fit to be called under KERNEL_DS (Al Viro) [Orabug: 25765436] {CVE-2016-10088}
- scsi: sg: check length passed to SG_NEXT_CMD_LEN (peter chang) [Orabug: 25751984] {CVE-2017-7187}
[4.1.12-61.1.29]
- tty: n_hdlc: get rid of racy n_hdlc.tbuf (Alexander Popov) [Orabug: 25696677] {CVE-2017-2636}
- TTY: n_hdlc, fix lockdep false positive (Jiri Slaby) [Orabug: 25696677] {CVE-2017-2636}
- If Slot Status indicates changes in both Data Link Layer Status and Presence Detect, prioritize the Link status change. (Jack Vogel) [Orabug: 25353783]
- PCI: pciehp: Leave power indicator on when enabling already-enabled slot (Ashok Raj) [Orabug: 25353783]
- firewire: net: guard against rx buffer overflows (Stefan Richter) [Orabug: 25451520] {CVE-2016-8633}
- usbnet: cleanup after bind() in probe() (Oliver Neukum) [Orabug: 25463898] {CVE-2016-3951}
- cdc_ncm: do not call usbnet_link_change from cdc_ncm_bind (Bjorn Mork) [Orabug: 25463898] {CVE-2016-3951}
- cdc_ncm: Add support for moving NDP to end of NCM frame (Enrico Mioso) [Orabug: 25463898] {CVE-2016-3951}
- x86/mm/32: Enable full randomization on i386 and X86_32 (Hector Marco-Gisbert) [Orabug: 25463918] {CVE-2016-3672}
- kvm: fix page struct leak in handle_vmon (Paolo Bonzini) [Orabug: 25507133] {CVE-2017-2596}
- crypto: mcryptd - Check mcryptd algorithm compatibility (tim) [Orabug: 25507153] {CVE-2016-10147}
- kvm: nVMX: Allow L1 to intercept software exceptions (#BP and #OF) (Jim Mattson) [Orabug: 25507188] {CVE-2016-9588}
- KVM: x86: drop error recovery in em_jmp_far and em_ret_far (Radim Krcmar) [Orabug: 25507213] {CVE-2016-9756}
- tcp: take care of truncations done by sk_filter() (Eric Dumazet) [Orabug: 25507226] {CVE-2016-8645}
- rose: limit sk_filter trim to payload (Willem de Bruijn) [Orabug: 25507226] {CVE-2016-8645}
- tipc: check minimum bearer MTU (Michal Kubecek) [Orabug: 25507239] {CVE-2016-8632} {CVE-2016-8632}
- fix minor infoleak in get_user_ex() (Al Viro) [Orabug: 25507269] {CVE-2016-9178}
- scsi: arcmsr: Simplify user_len checking (Borislav Petkov) [Orabug: 25507319] {CVE-2016-7425}
- scsi: arcmsr: Buffer overflow in arcmsr_iop_message_xfer() (Dan Carpenter) [Orabug: 25507319] {CVE-2016-7425}
- tmpfs: clear S_ISGID when setting posix ACLs (Gu Zheng) [Orabug: 25507341] {CVE-2016-7097} {CVE-2016-7097}
- posix_acl: Clear SGID bit when setting file permissions (Jan Kara) [Orabug: 25507341] {CVE-2016-7097} {CVE-2016-7097}
- ext2: convert to mbcache2 (Jan Kara) [Orabug: 25512366] {CVE-2015-8952}
- ext4: convert to mbcache2 (Jan Kara) [Orabug: 25512366] {CVE-2015-8952}
- mbcache2: reimplement mbcache (Jan Kara) [Orabug: 25512366] {CVE-2015-8952}
- USB: digi_acceleport: do sanity checking for the number of ports (Oliver Neukum) [Orabug: 25512466] {CVE-2016-3140}
- net/llc: avoid BUG_ON() in skb_orphan() (Eric Dumazet) [Orabug: 25682419] {CVE-2017-6345}
- net/mlx4_core: Disallow creation of RAW QPs on a VF (Eli Cohen) [Orabug: 25697847]
- ipv4: keep skb->dst around in presence of IP options (Eric Dumazet) [Orabug: 25698300] {CVE-2017-5970}
- perf/core: Fix concurrent sys_perf_event_open() vs. 'move_group' race (Peter Zijlstra) [Orabug: 25698751] {CVE-2017-6001}
- ip6_gre: fix ip6gre_err() invalid reads (Eric Dumazet) [Orabug: 25699015] {CVE-2017-5897}
- mpt3sas: Dont spam logs if logging level is 0 (Johannes Thumshirn) [Orabug: 25699035]
- xen-netfront: cast grant table reference first to type int (Dongli Zhang)
- xen-netfront: do not cast grant table reference to signed short (Dongli Zhang)
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 6 (x86_64) | dtrace-modules-4.1.12-61.1.33.el6uek-0.5.3-2.el6.src.rpm | 598248221a3b9ab478eb209ce2852156988d7173d34197046ad2d15584779980 | - | ol6_x86_64_UEKR4_archive |
| kernel-uek-4.1.12-61.1.33.el6uek.src.rpm | 8ee3b5767d924eef8f720a85a8039416270e4731461925a20918716eee9d4310 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| dtrace-modules-4.1.12-61.1.33.el6uek-0.5.3-2.el6.x86_64.rpm | 96b9349df3cb950105cc4918ecc13c2abf699a91e989917165061bb87680d0ef | - | ol6_x86_64_UEKR4_archive | |
| kernel-uek-4.1.12-61.1.33.el6uek.x86_64.rpm | 6b4448c66a422e9cc5a9211ef6ff5e1db0f54d3bd0fcc08d170af55e84c50baf | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-debug-4.1.12-61.1.33.el6uek.x86_64.rpm | 209036cb690a4fcf237b49f57fd3ba0060c8db92db2799ed44d71489de2861bd | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-debug-devel-4.1.12-61.1.33.el6uek.x86_64.rpm | 81402be04df7545b7775bd66d6ce453b2bce41dff528f2f4337b4ce70a54b1cd | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-devel-4.1.12-61.1.33.el6uek.x86_64.rpm | 177a35a69bfa5c531b4b07ba4d605f27ae7da4301b1797e31d1c729d65bd7c10 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-doc-4.1.12-61.1.33.el6uek.noarch.rpm | 36eb53dcfbd1f5fc7f5b8b4abfea67dec90b0ef52daf813a3212ab2114a34c74 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-firmware-4.1.12-61.1.33.el6uek.noarch.rpm | 7aa0a3522abba9fc3fddbdd346d7be92dd41dd91dc4982d047acd71eec1cb0a6 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| Oracle Linux 7 (x86_64) | dtrace-modules-4.1.12-61.1.33.el7uek-0.5.3-2.el7.src.rpm | e1ee052a62e0d76803992b360a59372758914c78e13e4b69bda0d24924332725 | - | ol7_x86_64_UEKR4_archive |
| kernel-uek-4.1.12-61.1.33.el7uek.src.rpm | 86514625ea41af128dd0f2974d6e4513c5fdea05083f7b8e5828a30a8eafbbb4 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| dtrace-modules-4.1.12-61.1.33.el7uek-0.5.3-2.el7.x86_64.rpm | 2295275039fd884ed4d42d9f6374dc1789dd704b1730c9a647234cad0e617b51 | - | ol7_x86_64_UEKR4_archive | |
| kernel-uek-4.1.12-61.1.33.el7uek.x86_64.rpm | 740e3c28c4e5ec5a32efa8fc4399e48a19111df654ebb275795f51c6576ebb09 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-debug-4.1.12-61.1.33.el7uek.x86_64.rpm | fbda4ff7e375e988ae86f5b6744a9ab2730afd4e07f5bebd7dd4cf331c0ead68 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-debug-devel-4.1.12-61.1.33.el7uek.x86_64.rpm | f90346ea6b028749519bcd5e88f31397f237544aa38484ac7bf6c5bebb478062 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-devel-4.1.12-61.1.33.el7uek.x86_64.rpm | e5df77b0761a0a31dc10e464c6ace7729f06dad44664bfea7b4bf0c63f69d36f | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-doc-4.1.12-61.1.33.el7uek.noarch.rpm | 3fd69c3c3bb259997212e19743aca7812a5f62cfff48b32f2741a363d8bc726c | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-firmware-4.1.12-61.1.33.el7uek.noarch.rpm | b617eb3d30c3e460157f685f885443324e5f2b8bfd45039212f0ae5888e9af13 | ELSA-2025-20007 | ol7_x86_64_UEKR4_archive | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
